CVE-2012-5643

EPSS 35.41%
Published 20.12.2012 12:02:19
Last modified 11.04.2025 00:51:21
Source secalert@redhat.com
Teams watchlist Login
Open Login

Multiple memory leaks in tools/cachemgr.cc in cachemgr.cgi in Squid 2.x and 3.x before 3.1.22, 3.2.x before 3.2.4, and 3.3.x before 3.3.0.2 allow remote attackers to cause a denial of service (memory consumption) via (1) invalid Content-Length headers, (2) long POST requests, or (3) crafted authentication credentials.

Affected products Warnungen 0 Metrics 2 CWE 1 References 23

Data is provided by the National Vulnerability Database (NVD)

Squid-cache ≫ Squid Version2.0

Squid-cache ≫ Squid Version2.1

Squid-cache ≫ Squid Version2.2

Squid-cache ≫ Squid Version2.3

Squid-cache ≫ Squid Version2.4

Squid-cache ≫ Squid Version2.5

Squid-cache ≫ Squid Version2.6

Squid-cache ≫ Squid Version2.7

Squid-cache ≫ Squid Version2.7 Updatestable3

Squid-cache ≫ Squid Version2.7 Updatestable4

Squid-cache ≫ Squid Version3.0

Squid-cache ≫ Squid Version3.0 Update- Editionpre1

Squid-cache ≫ Squid Version3.0 Update- Editionpre2

Squid-cache ≫ Squid Version3.0 Update- Editionpre3

Squid-cache ≫ Squid Version3.0 Update- Editionpre4

Squid-cache ≫ Squid Version3.0 Update- Editionpre5

Squid-cache ≫ Squid Version3.0 Update- Editionpre6

Squid-cache ≫ Squid Version3.0 Update- Editionpre7

Squid-cache ≫ Squid Version3.0 Updaterc4

Squid-cache ≫ Squid Version3.0.stable1

Squid-cache ≫ Squid Version3.0.stable2

Squid-cache ≫ Squid Version3.0.stable3

Squid-cache ≫ Squid Version3.0.stable4

Squid-cache ≫ Squid Version3.0.stable5

Squid-cache ≫ Squid Version3.0.stable6

Squid-cache ≫ Squid Version3.0.stable7

Squid-cache ≫ Squid Version3.0.stable8

Squid-cache ≫ Squid Version3.0.stable9

Squid-cache ≫ Squid Version3.0.stable10

Squid-cache ≫ Squid Version3.0.stable11

Squid-cache ≫ Squid Version3.0.stable11 Updaterc1

Squid-cache ≫ Squid Version3.0.stable12

Squid-cache ≫ Squid Version3.0.stable13

Squid-cache ≫ Squid Version3.0.stable14

Squid-cache ≫ Squid Version3.0.stable15

Squid-cache ≫ Squid Version3.0.stable16

Squid-cache ≫ Squid Version3.0.stable16 Updaterc1

Squid-cache ≫ Squid Version3.0.stable17

Squid-cache ≫ Squid Version3.0.stable18

Squid-cache ≫ Squid Version3.0.stable19

Squid-cache ≫ Squid Version3.0.stable20

Squid-cache ≫ Squid Version3.0.stable21

Squid-cache ≫ Squid Version3.0.stable22

Squid-cache ≫ Squid Version3.0.stable23

Squid-cache ≫ Squid Version3.0.stable24

Squid-cache ≫ Squid Version3.0.stable25

Squid-cache ≫ Squid Version3.1

Squid-cache ≫ Squid Version3.1.0.1

Squid-cache ≫ Squid Version3.1.0.2

Squid-cache ≫ Squid Version3.1.0.3

Squid-cache ≫ Squid Version3.1.0.4

Squid-cache ≫ Squid Version3.1.0.5

Squid-cache ≫ Squid Version3.1.0.6

Squid-cache ≫ Squid Version3.1.0.7

Squid-cache ≫ Squid Version3.1.0.8

Squid-cache ≫ Squid Version3.1.0.9

Squid-cache ≫ Squid Version3.1.0.10

Squid-cache ≫ Squid Version3.1.0.11

Squid-cache ≫ Squid Version3.1.0.12

Squid-cache ≫ Squid Version3.1.0.13

Squid-cache ≫ Squid Version3.1.0.14

Squid-cache ≫ Squid Version3.1.0.15

Squid-cache ≫ Squid Version3.1.0.16

Squid-cache ≫ Squid Version3.1.0.17

Squid-cache ≫ Squid Version3.1.0.18

Squid-cache ≫ Squid Version3.1.1

Squid-cache ≫ Squid Version3.1.2

Squid-cache ≫ Squid Version3.1.10

Squid-cache ≫ Squid Version3.1.11

Squid-cache ≫ Squid Version3.1.12

Squid-cache ≫ Squid Version3.1.13

Squid-cache ≫ Squid Version3.1.14

Squid-cache ≫ Squid Version3.1.15

Squid-cache ≫ Squid Version3.1.16

Squid-cache ≫ Squid Version3.1.17

Squid-cache ≫ Squid Version3.1.18

Squid-cache ≫ Squid Version3.1.19

Squid-cache ≫ Squid Version3.1.20

Squid-cache ≫ Squid Version3.1.21

Squid-cache ≫ Squid Version3.2.0.1

Squid-cache ≫ Squid Version3.2.0.2

Squid-cache ≫ Squid Version3.2.0.3

Squid-cache ≫ Squid Version3.2.0.4

Squid-cache ≫ Squid Version3.2.0.5

Squid-cache ≫ Squid Version3.2.0.6

Squid-cache ≫ Squid Version3.2.0.7

Squid-cache ≫ Squid Version3.2.0.8

Squid-cache ≫ Squid Version3.2.0.9

Squid-cache ≫ Squid Version3.2.0.10

Squid-cache ≫ Squid Version3.2.0.11

Squid-cache ≫ Squid Version3.2.0.12

Squid-cache ≫ Squid Version3.2.0.13

Squid-cache ≫ Squid Version3.2.0.14

Squid-cache ≫ Squid Version3.2.0.15

Squid-cache ≫ Squid Version3.2.0.16

Squid-cache ≫ Squid Version3.2.0.17

Squid-cache ≫ Squid Version3.2.0.18

Squid-cache ≫ Squid Version3.2.0.19

Squid-cache ≫ Squid Version3.2.1

Squid-cache ≫ Squid Version3.2.2

Squid-cache ≫ Squid Version3.2.3

Squid-cache ≫ Squid Version3.3.0.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	35.41%	0.969

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00010.html

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00040.html

http://lists.opensuse.org/opensuse-updates/2013-01/msg00052.html

http://lists.opensuse.org/opensuse-updates/2013-01/msg00075.html

http://lists.opensuse.org/opensuse-updates/2013-09/msg00025.html

http://lists.opensuse.org/opensuse-updates/2013-09/msg00032.html

http://openwall.com/lists/oss-security/2012/12/17/4

http://rhn.redhat.com/errata/RHSA-2013-0505.html

http://secunia.com/advisories/52024

http://secunia.com/advisories/54839

http://ubuntu.com/usn/usn-1713-1

http://www.debian.org/security/2013/dsa-2631